How to enable ONLY TLS 1.2 in Java, blocking SSL TLS1.0 and TLS 1.1

Question

I'm creating my SSL context like this:

SSLContext ret = SSLContext.getInstance("TLSv1.2");

When I went in firefox and forced it to disable TLS1.2, I noticed the page still loaded using TLS1.1

I would like to make sure the server ONLY allows TLS1.2 -- does anyone know of a way to do this?

The question is already answered on stackoverflow: http://stackoverflow.com/questions/32466407/how-to-force-java-server-to-accept-only-tls-1-2-and-reject-tls-1-0-and-tls-1-1-c — Limit, Nov 03 '16 at 05:14

score 0 · Answer 1 · answered Nov 03 '16 at 05:03

0

Check out SSLSocket.setEnabledProtocols(). Here are the valid names for protocols.

answered Nov 03 '16 at 05:03

Manish

1 Answers1